Directory traversal vulnerability in the Resource Manager in Cisco Unified Customer Voice Portal (CVP) Software prior to 9.0.1 ES 11 allows remote malicious users to overwrite arbitrary files via a crafted (1) HTTP or (2) HTTPS request that triggers incorrect parameter validation, aka Bug ID CSCub38369.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco unified customer voice portal 4.0 |
||
cisco unified customer voice portal 4.1 |
||
cisco unified customer voice portal 7.0 |
||
cisco unified customer voice portal 9.0 |
||
cisco unified customer voice portal 7.0\\(2\\) |
||
cisco unified customer voice portal |
||
cisco unified customer voice portal 4.0\\(2\\) |
||
cisco unified customer voice portal 3.0 |
||
cisco unified customer voice portal 8.0\\(1\\) |
||
cisco unified customer voice portal 8.5\\(1\\) |
||
cisco unified customer voice portal 3.6\\(10\\) |